How to Buy
This script is Copyright (C) 2010-2014 Tenable Network Security, Inc.
The remote device is missing a vendor-supplied security patch.
Multiple vulnerabilities exist in the Session Initiation Protocol
(SIP) implementation in Cisco IOS Software that could allow an
unauthenticated, remote attacker to cause a reload of an affected
device when SIP operation is enabled. Remote code execution may also
be possible. Cisco has released free software updates that address
these vulnerabilities. For devices that must run SIP there are no
however, mitigations are available to limit exposure of
See also :
Apply the relevant patch referenced in Cisco Security Advisory
Risk factor :
Critical / CVSS Base Score : 10.0
Nessus Plugin ID: 49054 (cisco-sa-20100324-siphttp.nasl)
CVE ID: CVE-2010-0579CVE-2010-0580CVE-2010-0581
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.